$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa File: CF04BF60361B11EBA7A9147FC4F9AE02.roa (raw, json) Hash identifier: qCH+ju53h+N5/h4b/jIomzlazHI0xpbHpFSKe/bWUXE= Subject key identifier: 28:F7:CC:A8:28:14:FA:1F:0F:36:65:24:BA:FB:B9:D8:77:E3:DD:D8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 6E52 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa Signing time: Wed 10 May 2023 16:33:31 +0000 ROA not before: Wed 10 May 2023 16:33:31 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140206 IP address blocks: 103.159.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28242 (0x6e52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:33:31 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc75b-e9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:22:75:0b:d9:8c:fc:02:08:67:ff:85:69:70: 4d:9c:26:af:8a:c8:3b:5c:61:c7:cf:56:c1:ce:ec: 5c:e6:ca:6b:e3:47:99:02:72:f5:38:2e:4f:74:6c: 7c:3f:43:bd:61:9e:81:0a:68:56:6b:3d:b1:0f:91: 10:29:97:99:6e:28:c1:b1:a0:ba:64:6b:4d:73:ec: 5f:c0:76:84:99:8a:99:d7:02:f0:72:ba:a9:54:63: 94:55:5b:5d:41:e5:b5:ed:20:bb:df:12:55:bc:32: 93:cf:db:f2:2a:f5:fd:30:4c:d1:5d:d3:3c:8c:e8: d8:3b:9b:e0:91:37:cc:41:e9:e2:5a:09:9e:a9:5b: 80:69:1f:d9:96:6a:b1:99:b1:2f:83:e3:27:d0:05: 63:c7:f2:f2:f8:e2:2b:85:6c:f0:07:c9:07:ba:c5: a5:c0:fa:41:2d:d6:5f:2f:e4:f4:0e:1b:f8:cc:1e: 8d:bb:dd:29:a0:0d:09:eb:ae:a1:ed:9a:5b:f1:ce: 7d:f7:e2:ad:88:ac:56:ac:e9:6d:b5:19:0e:1b:1b: bb:b3:49:2c:73:65:4e:1f:75:a3:94:86:37:af:cc: bc:74:5d:fc:5c:a9:32:43:96:06:f6:60:93:09:c2: c0:27:d7:42:70:fd:15:09:39:0d:37:21:11:c9:8e: b5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F7:CC:A8:28:14:FA:1F:0F:36:65:24:BA:FB:B9:D8:77:E3:DD:D8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CF04BF60361B11EBA7A9147FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.97.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:aa:0a:e5:1f:5f:6c:c7:91:b6:86:89:d2:b1:a2:f6:50:1a: 3d:fa:09:6b:dc:ff:20:a2:8c:10:11:5a:cd:37:32:1a:cd:2f: 2c:c7:90:58:b0:d6:47:ef:97:72:a4:e7:cd:5c:49:cb:1e:4a: e4:15:ae:6d:eb:6a:91:b0:52:43:77:bd:c3:97:61:3d:10:7a: ae:a4:c4:d6:f3:89:6c:e3:3d:8b:9b:8d:02:40:93:50:4c:cf: c4:6f:0e:18:0b:00:6a:49:16:e8:44:8b:77:56:88:e0:d3:77: 4f:3d:d0:4d:6c:36:8d:42:b5:6a:bd:d3:3e:ca:48:08:14:c7: 01:9b:5d:43:55:a4:e5:65:51:d0:dc:52:6b:79:ad:c0:3e:5e: 80:27:21:38:09:6b:ef:c3:e6:cf:39:63:b8:ca:11:99:36:19: 5e:88:49:e8:74:59:40:64:c1:d6:a4:b7:22:e1:3c:98:b0:5f: 99:f7:8e:66:e9:12:7e:73:20:8e:9c:98:4f:40:b6:cc:6e:2d: 35:90:e7:e5:4b:59:3e:3f:69:de:e0:56:86:fa:5b:83:b6:87: dc:be:73:56:a6:ea:a1:6e:59:70:f4:e2:79:7d:f3:49:e7:a9: 58:f7:5d:f5:ea:b1:ef:8c:a7:89:0e:40:8a:bd:6c:5f:d5:5e: 62:9c:3a:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICblIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTYzMzMxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzc1Yi1lOWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriJ1C9mM/AIIZ/+FaXBNnCavisg7XGHHz1bBzuxc5spr40eZAnL1OC5PdGx8 P0O9YZ6BCmhWaz2xD5EQKZeZbijBsaC6ZGtNc+xfwHaEmYqZ1wLwcrqpVGOUVVtd QeW17SC73xJVvDKTz9vyKvX9MEzRXdM8jOjYO5vgkTfMQeniWgmeqVuAaR/Zlmqx mbEvg+Mn0AVjx/Ly+OIrhWzwB8kHusWlwPpBLdZfL+T0Dhv4zB6Nu90poA0J666h 7Zpb8c599+KtiKxWrOlttRkOGxu7s0ksc2VOH3WjlIY3r8y8dF38XKkyQ5YG9mCT CcLAJ9dCcP0VCTkNNyERyY61zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCj3zKgo FPofDzZlJLr7udh3493YMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQ0YwNEJGNjAz NjFCMTFFQkE3QTkxNDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn2EwDQYJKoZIhvcNAQELBQADggEBAH+qCuUfX2zHkbaG idKxovZQGj36CWvc/yCijBARWs03MhrNLyzHkFiw1kfvl3Kk581cScseSuQVrm3r apGwUkN3vcOXYT0Qeq6kxNbziWzjPYubjQJAk1BMz8RvDhgLAGpJFuhEi3dWiODT d0890E1sNo1CtWq90z7KSAgUxwGbXUNVpOVlUdDcUmt5rcA+XoAnITgJa+/D5s85 Y7jKEZk2GV6ISeh0WUBkwdaktyLhPJiwX5n3jmbpEn5zII6cmE9AtsxuLTWQ5+VL WT4/ad7gVob6W4O2h9y+c1am6qFuWXD04nl980nnqVj3XfXqse+Mp4kOQIq9bF/V XmKcOjY= -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:46 2024 by rpki-client on console-ams.rpki-client.org